Description: webui-aria2 commit 4fe2e was discovered to contain a path traversal vulnerability. Link: Visit the GitHub Repository Language: Shell Owner: MartiSabate Stars: 0 Forks: 0

Description: Improper access control in editor components of The Document Foundation LibreOffice allowed an attacker to craft a document that would cause external links to be loaded without prompt. In the affected versions of LibreOffice documents that used "floating frames" linked to external files, would load the contents

Description: Microsoft Outlook Elevation of Privilege Vulnerability Link: Visit the GitHub Repository Language: PowerShell Owner: Agentgilspy Stars: 0 Forks: 0

Description: System command injection in appGet.cgi on ASUS RT-AC3200 version 3.0.0.4.382.50010 allows attackers to execute system commands via the "load_script" URL parameter. Link: Visit the GitHub Repository Language: Shell Owner: ediop3SquadALT Stars: 0 Forks: 0

Description: A SQL injection vulnerability in Nagios XI from version 5.11.0 up to and including 5.11.1 allows authenticated attackers to execute arbitrary SQL commands via the ID parameter in the POST request to /nagiosxi/admin/banner_message-ajaxhelper.php Link: Visit the GitHub Repository Language: Python Owner:

Description: Improper Control of Generation of Code ('Code Injection') vulnerability in Codeer Limited Bricks Builder allows Code Injection.This issue affects Bricks Builder: from n/a through 1.9.6. Link: Visit the GitHub Repository Language: Python Owner: meli0dasH4ck3r Stars: 0 Forks: 0

Description: Jenkins 2.441 and earlier, LTS 2.426.2 and earlier does not disable a feature of its CLI command parser that replaces an '@' character followed by a file path in an argument with the file's contents, allowing unauthenticated attackers to read arbitrary files on

Description: /panel/uploads in Subrion CMS 4.2.1 allows remote attackers to execute arbitrary PHP code via a .pht or .phar file, because the .htaccess file omits these. Link: Visit the GitHub Repository Language: Python Owner: Drew-Alleman Stars: 0 Forks: 0

Description: SAP NetWeaver (Visual Composer 7.0 RT) versions - 7.30, 7.31, 7.40, 7.50, without restriction, an attacker authenticated as a non-administrative user can upload a malicious file over a network and trigger its processing, which is capable of running operating system commands with the privilege

Description: Improper Control of Generation of Code ('Code Injection') vulnerability in Codeer Limited Bricks Builder allows Code Injection.This issue affects Bricks Builder: from n/a through 1.9.6. Link: Visit the GitHub Repository Language: Python Owner: cboss43 Stars: 0 Forks: 0